Hi guys! I have a question about npm, the package manager node.js uses.
What security measures this thing has? I read in the tutorial ‘how-to-npm’ that it is possible to accidentally publish private data by just being in the wrong directory and typing in the wrong npm command. It is really that easy to leak all that private information? … and what about this version command (every single application except this ones uses that ‘version’ keyword to get the version but npm uses it to upload files…)
Also, what exactly this adduser command does? I tried it and then tried to login in their page but it said that the account doesn’t exist.